CVE-2013-3241

phpMyAdmin <4.0.0-rc3 - Code Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-3241. PoCs published by waraxe.

AI-analyzed exploit summary This is a detailed technical writeup describing multiple vulnerabilities in phpMyAdmin, including remote code execution via preg_replace() and local file inclusion in export.php. It provides root cause analysis, affected versions, and step-by-step exploitation details.

Description

export.php (aka the export script) in phpMyAdmin 4.x before 4.0.0-rc3 overwrites global variables on the basis of the contents of the POST superglobal array, which allows remote authenticated users to inject values via a crafted request.

Exploits (1)

exploitdb WRITEUP VERIFIED

by waraxe · textwebappsphp

https://www.exploit-db.com/exploits/25003

View Code ZIP pw:eip

This is a detailed technical writeup describing multiple vulnerabilities in phpMyAdmin, including remote code execution via preg_replace() and local file inclusion in export.php. It provides root cause analysis, affected versions, and step-by-step exploitation details.

Classification

Writeup 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: phpMyAdmin 3.5.8 and 4.0.0-RC2

Auth required

Prerequisites: Valid phpMyAdmin user credentials · PHP version < 5.4.7 for preg_replace() exploit · PHP version < 5.3.4 for LFI exploit

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2013-04/0217.html

Vendor Advisory x_refsource_confirm

http://www.phpmyadmin.net/home_page/security/PMASA-2013-5.php

Scores

EPSS 0.0419

EPSS Percentile 89.6%

Details

Status published

Products (1)

phpmyadmin/phpmyadmin 4.0.0 rc2

Published Apr 26, 2013

Tracked Since Feb 18, 2026